$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663365303a3a2f34382d3438203d3e20313530323439.roa File: 326130363a396634343a663365303a3a2f34382d3438203d3e20313530323439.roa (raw, json) Hash identifier: 0fjvdOyyF8A2Z2dyvEMEgnnB9O61IydZOhRYZtOKiCk= Subject key identifier: 44:94:9A:84:2F:DA:6A:94:99:3C:0F:D2:88:7A:60:7C:4D:97:8A:88 Certificate issuer: /CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Certificate serial: 08D5A03226E2FF52975C7D20F2AA4032584A478B Authority key identifier: B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663365303a3a2f34382d3438203d3e20313530323439.roa Signing time: Mon 11 Dec 2023 03:08:00 +0000 ROA not before: Mon 11 Dec 2023 03:03:00 +0000 ROA not after: Mon 09 Dec 2024 03:08:00 +0000 asID: 150249 IP address blocks: 2a06:9f44:f3e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 02 Jul 2024 22:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:d5:a0:32:26:e2:ff:52:97:5c:7d:20:f2:aa:40:32:58:4a:47:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Validity Not Before: Dec 11 03:03:00 2023 GMT Not After : Dec 9 03:08:00 2024 GMT Subject: CN=44949A842FDA6A94993C0FD2887A607C4D978A88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:55:e4:81:e4:2d:2e:5c:2f:d0:d9:7c:04:55: d5:77:a7:43:d2:a2:24:bc:63:a9:d2:67:9c:e5:58: d6:07:82:18:26:19:06:e8:10:97:41:a1:f3:f6:dd: ec:4c:6a:bd:32:0f:10:7f:66:c9:5d:4a:72:41:65: 69:c3:d1:95:cb:34:6c:43:ff:fd:1c:45:84:3e:b7: b6:27:c2:00:b6:8d:93:4c:93:f9:f7:14:b9:44:83: bc:64:2c:f3:ba:99:91:ab:19:5e:14:17:9d:10:89: 64:4f:6b:f7:14:56:9c:59:33:86:aa:be:1e:16:cb: 2a:dd:6e:d1:75:cd:fe:77:fa:9e:a6:62:bf:fa:fd: 70:7f:7e:11:45:d4:4f:c3:dd:ea:78:f4:f2:c1:b1: d8:c5:9e:31:88:cd:df:c5:1d:68:5f:7d:2d:b1:cb: f0:a6:4b:ea:86:d7:b7:e2:62:85:54:af:33:9d:9e: 48:9b:3a:7a:73:14:ab:95:07:54:b6:c3:d5:3e:53: 5c:3d:4a:dd:bc:d2:a8:10:14:b6:30:a1:8c:77:0a: 61:cd:c7:c9:c6:e8:bf:8b:f0:27:d2:ab:71:7b:02: 72:b8:ab:b4:44:a1:a2:53:63:8b:fc:23:02:b5:59: 61:71:7e:49:d5:52:75:d8:8f:4c:7e:cd:c3:86:73: e9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:94:9A:84:2F:DA:6A:94:99:3C:0F:D2:88:7A:60:7C:4D:97:8A:88 X509v3 Authority Key Identifier: keyid:B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663365303a3a2f34382d3438203d3e20313530323439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f44:f3e0::/48 Signature Algorithm: sha256WithRSAEncryption 27:84:1b:2d:23:65:41:83:07:16:d6:f8:90:07:b4:b9:2d:21: 5b:9c:1d:06:b0:c8:fd:f7:68:8e:57:2e:ac:04:ee:0a:10:9f: 95:26:64:8d:7b:91:26:58:4b:5d:16:dd:07:59:0b:e2:4e:3e: 7e:72:38:68:81:89:69:b9:70:f1:0d:c9:d6:29:ee:95:d6:c0: 12:b6:d6:fe:c0:5f:0a:c6:87:50:73:0b:d4:ab:4f:70:b9:47: 8b:e3:b8:54:f9:e2:93:da:d9:01:4b:35:9c:4f:85:2c:da:ab: 1a:c0:00:90:b8:a6:6d:26:9f:46:05:a4:71:0c:02:18:3b:14: ac:30:86:fc:16:1f:69:a4:64:6b:09:e1:d9:0a:e7:75:44:7e: 37:2e:69:94:0b:8e:e6:5a:0e:66:09:a5:c6:ad:9c:4b:b6:c0: 2d:d2:47:12:f4:a9:44:a0:e4:d2:69:e9:97:0d:19:3d:16:0a: f7:77:e1:cf:53:1d:44:dc:23:d9:b9:66:d7:39:fb:18:9a:9c: 31:50:23:97:fe:94:9a:d8:bd:36:ba:b3:55:96:f2:dd:a6:d4: f4:f9:bd:61:48:27:0e:37:27:64:c3:46:79:93:b7:ab:6e:72: 54:88:36:29:b5:13:dc:22:3f:d3:24:b6:7e:f1:26:f4:11:22: 71:48:f7:d0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUCNWgMibi/1KXXH0g8qpAMlhKR4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZB MjVBNDhDMTAeFw0yMzEyMTEwMzAzMDBaFw0yNDEyMDkwMzA4MDBaMDMxMTAvBgNV BAMTKDQ0OTQ5QTg0MkZEQTZBOTQ5OTNDMEZEMjg4N0E2MDdDNEQ5NzhBODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4VeSB5C0uXC/Q2XwEVdV3p0PS oiS8Y6nSZ5zlWNYHghgmGQboEJdBofP23exMar0yDxB/ZsldSnJBZWnD0ZXLNGxD //0cRYQ+t7YnwgC2jZNMk/n3FLlEg7xkLPO6mZGrGV4UF50QiWRPa/cUVpxZM4aq vh4WyyrdbtF1zf53+p6mYr/6/XB/fhFF1E/D3ep49PLBsdjFnjGIzd/FHWhffS2x y/CmS+qG17fiYoVUrzOdnkibOnpzFKuVB1S2w9U+U1w9St280qgQFLYwoYx3CmHN x8nG6L+L8CfSq3F7AnK4q7REoaJTY4v8IwK1WWFxfknVUnXYj0x+zcOGc+mBAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQURJSahC/aapSZPA/SiHpgfE2XiogwHwYDVR0j BBgwFoAUuVQs9bCSOpARAz4vfKVD1qJaSMEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgtZDcwYS00NzkzLThhYzYtZjNmNGE3MmFl OWNhLzEvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVBNDhDMS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVB NDhDMS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgt ZDcwYS00NzkzLThhYzYtZjNmNGE3MmFlOWNhLzEvMzI2MTMwMzYzYTM5NjYzNDM0 M2E2NjMzNjUzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMDMyMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGn0Tz4DANBgkqhkiG9w0BAQsFAAOCAQEAJ4QbLSNlQYMHFtb4 kAe0uS0hW5wdBrDI/fdojlcurATuChCflSZkjXuRJlhLXRbdB1kL4k4+fnI4aIGJ ablw8Q3J1inuldbAErbW/sBfCsaHUHML1KtPcLlHi+O4VPnik9rZAUs1nE+FLNqr GsAAkLimbSafRgWkcQwCGDsUrDCG/BYfaaRkawnh2QrndUR+Ny5plAuO5loOZgml xq2cS7bALdJHEvSpRKDk0mnplw0ZPRYK93fhz1MdRNwj2blm1zn7GJqcMVAjl/6U mti9NrqzVZby3abU9Pm9YUgnDjcnZMNGeZO3q25yVIg2KbUT3CI/0yS2fvEm9BEi cUj30A== -----END CERTIFICATE-----Generated at Tue Jul 2 07:47:33 2024 by rpki-client on console-ams.rpki-client.org